Whitelisting Data and Anti-Spam Filtering Information

Whitelist Data and Links

Before you begin phishing and training your users, you must whitelist. It is extremely important that you whitelist us in order to prevent our phishing security test emails and training notifications from being blocked or filtered into your Spam folder.

Whitelisting Best Practices

The way you'll need to whitelist KnowBe4 varies depending on your environment. For guidance, you can use our Whitelisting Wizard which will point you in the right direction. As a best practice, we recommend whitelisting our IP addresses or hostnames in your mail server if you're not using a cloud-based spam filter. If you are using acloud-based spam filter, you will need to whitelist by email header in your mail server and whitelist by IP addressor hostname in your spam filter.

If you find that you are unable to whitelist IP addresses for whatever reason, you can whitelist our mail server hostnames instead.

Take into consideration the various products or services you may be using in your mail or web environment to prevent issues with deliverability. Our support team is available for assistance.

Also, consider your mail server or mail filter may have rate limiting. Rate limiting can slow or block the delivery of a phishing test when sending a large number of emails at once. Review your mail server or filter settings for its rate limiting rules to ensure that your phishing test will arrive to your users. Although we do not recommend this, a potential workaround is to temporarily turn off rate limiting but be sure to turn it back on as soon as the phishing emails have been delivered successfully.

We recommend that you run at least one phishing campaign that is limited in scope to only one or two administrative users who can confirm receipt and tracking of clicks on phishing links. This should be done before the baseline test and will confirm that our phishing emails are getting through any spam/firewall protection.

As soon as you are done with your preliminary test, you should delete or hide the campaign so that it will not interfere with your reports or risk score.

* Please note that "/26" is the CIDR format for an IP subnet mask. In this case, it indicates the following IP range: 147.160.167.0 - 147.160.167.63. For more more information on IP network subnets, please see here.

Hostnames

Messages Sent

psm.knowbe4.com

phishtest.knowbe4.com *

KnowBe4 Simulated Phishing and Training emails

* Deprecating in October 2019

For security purposes, whitelisting by email header is NOT recommended on your public email endpoint.

Simulated Phishing Email Header

Email Header Text

X-PHISHTEST

This is a phishing security test from KnowBe4 that has been authorized by the recipient organization

* Please note that "/26" is the CIDR format for an IP subnet mask. In this case, it indicates the following IP range: 147.160.167.0 - 147.160.167.63. For more more information on IP network subnets, please see here.

Hostnames

Messages Sent

psm.knowbe4.com

phishtest.knowbe4.com *

KnowBe4 Simulated Phishing and Training emails

* Deprecating in October 2019

For security purposes, whitelisting by email header is NOT recommended on your public email endpoint.

Simulated Phishing Email Header

Email Header Text

X-PHISHTEST

This is a phishing security test from KnowBe4 that has been authorized by the recipient organization

Adding KnowBe4 to Your SPF Records

Common Mail Servers

Do you need assistance with setting up whitelisting? The steps that need to be taken will vary across different email clients, servers, and internet security platforms. Here are some articles that may be helpful:

Whitelisting in Proofpoint: Proofpoint has whitelisted our IP addresses and hostnames in their system globally, so you do not have to whitelist us there. However, if you are having issues, please see our article on Whitelisting in Proofpoint.

Whitelisting in Securence: Securence has whitelisted our IP addresses in their system globally, so you do not have to whitelist us there.

Link Testing and Intent Analysis

Some common email filtering and anti-spam services (such as Barracuda, Symantec, Websense, MessageLabs, etc.) will sometimes have link-following or link inspection options. These services may follow links found in incoming messages, resulting in skewed or 100% click-through rates. You can either whitelist/exempt our emails from being subject to these types of features/services or disable these features for the duration of a phishing test. More information can be found here.

Using a Third-party Hosted Spam/Content Filter? Try Smart Hosting

If you cannot add our whitelist data or your third-party solution impacts deliverability of the phishing emails, we are able to establish direct routes to your mail server to bypass that filtering. Just ask our technical support staff about the option of smart hosting, and they can assist you. Click here to submit a support ticket.

Email from KnowBe4 Employees Going to Junk or Spam?

Occasionally, we may send you notifications about updates to the system (new features, templates, etc.), or our employees may check in with you to see how things are. If you'd like to ensure these emails will make it through without going into Junk or Spam, you can whitelist emails coming from knowbe4.com and knowbe4.mail.intercom.io

Third-party Whitelisting Troubleshooting

KnowBe4's support team will provide assistance with whitelisting as much as possible. However, due to the many variations of mail filtering services and providers in use, we recommend working directly with your service provider to properly whitelist KnowBe4 if you're experiencing issues.

Below is an email template you may send to your service provider's support team as a request for whitelisting assistance, so they understand the services KnowBe4 offers:

Our organization uses KnowBe4, a security awareness training platform that provides simulated phishing tests and training for our employees. We would like to whitelist all KnowBe4 simulated phishing tests and training emails to ensure they successfully reach the inbox of our employees. Please provide us with the appropriate whitelisting assistance to achieve this.